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DETAILED ACTION 
Continued Examination Under 3 7 CFR 1.114 

1 . A request for continued examination under 37 CFR 1.114, including the fee set forth in 
37 CFR 1.17(e), was filed in this application after final rejection. Since this application is 
eligible for continued examination under 37 CFR 1.114, and the fee set forth in 37 CFR 1 . 1 7(e) 
has been timely paid, the finality of the previous Office action has been withdrawn pursuant to 
37 CFR 1.1 14. Applicant's submission filed on 8/20/2007 has been entered. 

Response to Arguments 

2. Applicant's arguments with respect to claims 1-46 have been considered but are moot in 
view of the new ground(s) of rejection. 

Claim Rejections - 35 USC § 103 

3. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

4. Claims 1-2 and 4-40 are rejected under 35 U.S.C. 103(a) as being unpatentable over U.S. 
Patent Number 6,662,365 to Sullivan et al. in view of U.S. Patent Number 5,987,61 1 to Freund. 

5. As to claim 1 , Sullivan teaches a method in an access management system comprising an 
identity system for managing identity profiles and an access system for providing security of 
resources, a method for defining a workflow for managing entity identities, the method 
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comprising the steps of: the access management system accessing a template that indicates one 
or more parameters for defining one or more workflows for managing identity profiles, wherein 
said one or more parameters comprise one or more parameters that define an operation to be 
performed on identity profiles as part of said one or more workflows (col. 9, lines 36-53, the 
saved user profiles are the templates); creating a definition of a first workflow for managing 
an identity profile for at least one user (col. 9, lines 26-30), based on said template, wherein said 
identity profile is used by said access management system to control access by said at least one 
user to said resources (col. 6, lines 58-64); and storing said definition of said workflow at a mass 
storage device (col. 4, lines 62-65); however Sullivan does not explicitly teach the resources 
being distributed across web servers. 

Freund teaches a method of managing an identity profile for at least one user wherein 
said identity profile is used by an access management system to control access by said at least 
one user to resources on one or more web servers (col. 9, lines 22-53). 

It would have been obvious to one of ordinary skill in the Computer Networking art at the 
time of the invention to combine the teachings of Sullivan regarding the use of templates for 
implementing an access policy for various users with the teachings of Freund regarding 
implementing an access policy for various users with respect to resources on web servers 
because Sullivan discusses controlling access distributed applications (col. 10, lines 60-63) and 
the resources taught by Freund are distributed applications that would fall within the scope of 
col. 10, lines 60-63 of Freund. 

6. As to claim 2, Sullivan teaches a method according to claim 1 , wherein: said template 
includes a set of parameters for each action available to a workflow type (col. 8, lines 7-37). 
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7. As to claim 4, Sullivan teaches a method according to claim 1 , further comprising the 
steps of: adding data to said template after said step of storing; creating a definition of a second 
workflow after said step of adding data; and storing said definition of said second workflow (col. 
9, lines 13-20). 

8. As to claim 5, Sullivan teaches a method according to claim 1 , further comprising the 
step of: creating the template (col. 9, lines 13-20). 

9. As to claim 6, Sullivan teaches a method according to claim 5, wherein said step of 
creating said template includes the steps of: adding a set of workflow types to said template; 
adding one or more actions for at least a subset of said workflow types; and adding parameters 
for at least a subset of said actions (col. 4, lines 62-65, col. 6, lines 58-64, col. 8, lines 7-37, col. 

9. lines 26-30). 

1 0. As to claim 7, Sullivan teaches a method according to claim 1 , wherein: said template 
applies to only one application (col. 4, lines 62-65, col. 6, lines 58-64, col. 8, lines 7-37, col. 9, 
lines 26-30). 

11. As to claim 8, Sullivan teaches a method according to claim 1 , wherein: said template 
includes parameters for creating objects, deleting objects and changing attributes (col. 4, lines 
62-65, col. 6, lines 58-64, col. 8, lines 7-37, col. 9, lines 26-30). 

12. As to claim 9, Sullivan teaches a method according to claim 1, wherein: said template 
includes parameters for self registration (col. 4, lines 62-65, col. 6, lines 58-64, col. 8, lines 7-37, 
col. 9, lines 26-30). 
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13. As to claim 10, Sullivan teaches a method according to claim 1, wherein: said template 
includes a parameter indicating whether supplied variables can be used in said step of creating 
(col. 4, lines 62-65, col. 6, lines 58-64, col. 8, lines 7-37, col. 9, lines 26-30). 

14. As to claim 11, Sullivan teaches a method according to claim 1, wherein: said template 
includes a parameter indicating whether additional workflows can be used to supply data (col. 4, 
lines 62-65, col. 6, lines 58-64, col. 8, lines 7-37, col. 9, lines 26-30). 

15. As to claim 12, Sullivan teaches a method according to claim 11, wherein: said additional 
workflows includes multiple levels of nesting of workflows (col. 4, lines 62-65, col. 6, lines 58- 
64, col. 8, lines 7-37, col. 9, lines 26-30). 

16. As to claim 14, Sullivan teaches a method according to claim 1, wherein said step of 
creating includes the step of: accessing one or more parameters in said template; offering a set of 
options based on said accessed parameters; and receiving a selection of one or more of said 
offered options (col. 4, lines 62-65, col. 6, lines 58-64, col. 8, lines 7-37, col. 9, lines 26-30). 

17. As to claim 15, Sullivan teaches a method according to claim 1, wherein said step of 
creating includes the steps of: determining a first set of possible actions for a particular step 
based on said template; reporting said first set of possible actions; and receiving a selection of a 
first action of said first set of possible actions (col. 4, lines 62-65, col. 6, lines 58-64, col. 8, lines 
7-37, col. 9, lines 26-30). 

18. As to claim 16, Sullivan teaches a method according to claim 1, wherein said step of 
creating includes the steps of: determining a first set of possible data types for a particular action 
based on said template; reporting said first set of possible data types; receiving an indication of a 
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variable for said first workflow; and receiving a selection of a first data type for said variable 
(col. 4, lines 62-65, col. 6, lines 58-64, col. 8, lines 7-37, col. 9, lines 26-30). 

19. As to claim 17, Sullivan teaches a method according to claim 16, wherein: said first data 
type is a variable supplied by another workflow (col. 4, lines 62-65, col. 6, lines 58-64, col. 8, 
lines 7-37, col. 9, lines 26-30). 

20. As to claim 1 8, Sullivan teaches a method according to claim 1 , wherein said step of 
creating includes the steps of: determining whether pre actions are available for a particular 
action based on said template; reporting whether pre actions are available for said particular 
action; and receiving a selection of whether to add pre actions to said definition of said first 
workflow for said particular action (col. 4, lines 62-65, col. 6, lines 58-64, col. 8, lines 7-37, col. 
9, lines 26-30). 

21. As to claim 1 9, Sullivan teaches a method according to claim. 1 , wherein said step of 
creating includes the steps of: determining a first set of possible entry conditions for a particular 
action based on said template; reporting said a first set of possible entry conditions; receiving a 
selection of a first entry condition of said first set of possible entry conditions; determining and 
reporting whether said first entry condition is associated with a sub-workflow; and receiving an 
indication whether said first workflow should wait for said sub-workflow (col. 4, lines 62-65, 
col. 6, lines 58-64, col. 8, lines 7-37, col. 9, lines 26-30). 

22. As to claim 20, Sullivan teaches a method according to claim 1, wherein said step of 
creating includes the steps of: determining a first set of possible actions for a particular step 
based on said template; reporting said first set of possible actions; receiving a selection of a first 
action of said first set of possible actions; determining a first set of possible data types for said 
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first action based on said template; reporting said first set of possible data types; receiving an 
indication of a variable for said first workflow; receiving a selection of a first data type for said 
variable; determining whether pre or post actions are available for said first action based on said 
template; reporting whether pre or post actions are available for said first action; receiving a 
selection of whether to add pre or post actions to said definition of said first workflow for said 
first action; determining a first set of possible entry conditions for said first action based on said 
template; reporting said a first set of possible entry conditions; receiving a selection of a first 
entry condition of said a first set of possible entry conditions; determining and reporting whether 
said first entry condition is associated with a sub-workflow; and receiving an indication whether 
said first workflow should wait for said sub-workflow (col. 4, lines 62-65, col. 6, lines 58-64, 
col. 8, lines 7-37, col. 9, lines 26-30). 

23 . As to claim 2 1 , Sullivan teaches a method according to claim 1 , wherein said step of 
creating includes the steps of: accessing one or more parameters in said template; offering a set 
of options in a graphical user interface based on said accessed parameters; and receiving a 
selection of one or more of said offered options using said graphical user interface (col. 4, lines 
62-65, col. 6, lines 58-64, col. 8, lines 7-37, col. 9, lines 26-30). 

24. As to claims 22-39, they are rejected for similar reasoning to claims 1-21 as being 
devices and a system for performing the method of claims 1-21. 

25. As to claims 40, The Sullivan-Freund combination does not explicitly teach enrolling, 
renewing, and revoking certificates. Official notice is taken that the use of certificates was well 
known at the time of the invention. It would have been obvious to combine the teachings of the 
Sullivan-Freund combination with the certificates because certificates provide an added layer of 
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security and the claims are not actually doing anything specific with the certificates thus using 
certificates as claimed would produce a predictable result. 

26. Claims 3 and 41-46 are rejected under 35 U.S.C. 103(a) as being unpatentable over U.S. 
Patent Number 6,662,365 to Sullivan et al. in view of U.S. Patent Number 5,987,61 1 to Freund 
in further view of U.S. Patent Number 7,080,078 to Slaughter et al. 

27. As to claims 3 and 41-46, the Sullivan Freund combination does not explicitly teach the 
use of XML and callback URL's for performing workflow functions. 

Slaughter teaches the use of XML messages and callback URL's for performing 
workflow functions (col. 8, lines 24-48). 

It would have been obvious to one of ordinary skill in the Computer Networking art at the 
time of the invention to combine the teachings of the Sullivan Freund combination regarding the 
management of users with workflows with the teachings of Slaughter regarding XML and 
callback URL's because XML provides a way of standardizing messages via a network. 

Conclusion 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Douglas B. Blair whose telephone number is (571) 272-3893. 
The examiner can normally be reached on 9:00am-5 :30pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Andrew Caldwell can be reached on (571) 272-3868. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

Douglas Blair 




